103 matches found
CVE-2024-57229
NETGEAR RAX5 AX1600 WiFi Router V1.0.2.26 was discovered to contain a command injection vulnerability via the devname parameter in the resetwifi function...
CVE-2024-57229
NETGEAR RAX5 (AX1600 WiFi Router) v1.0.2.26 has a command injection in the reset_wifi function via the devname parameter due to insufficient input filtering. Affected component: reset_wifi; root cause: devname not properly sanitized. Impact: potential arbitrary command execution with network acce...
NETGEAR RAX5 安全漏洞
The NETGEAR RAX5 is a wireless router from NETGEAR. NETGEAR RAX5 suffers from a command injection vulnerability, which stems from the devname parameter in the resetwifi function failing to correctly filter constructed command special characters, commands, etc. The vulnerability can be exploited t...
CVE-2025-3259
A vulnerability, which was classified as critical, has been found in Tenda RX3 16.03.13.11. This issue affects the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack may be initiated remotely...
CVE-2024-10698
A vulnerability was found in Tenda AC6 15.03.05.19 and classified as critical. Affected by this issue is the function formSetDeviceName of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack may be launched remotely. The...
CVE-2024-57580
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function...
CVE-2024-57580
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function...
Tenda AC18 安全漏洞
The Tenda AC18 is a router from the Chinese company Tenda. The Tenda AC18 suffers from a buffer overflow vulnerability that originates from the devName parameter of the formSetDeviceName function failing to properly validate the length of the input data, which can be exploited by an attacker to...
CVE-2024-57580
Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the devName parameter in the formSetDeviceName function...
CVE-2024-57225
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the devname parameter in the resetwifi function...
CVE-2024-57214
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the devname parameter in the resetwifi function...
CVE-2024-57214
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the devname parameter in the resetwifi function...
CVE-2024-57225
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the devname parameter in the resetwifi function...
Linksys E7350 安全漏洞
The Linksys E7350 is a wireless router device from Leadsys. A security vulnerability exists in the handling of the devname parameter by the Linksys E7350 resetwifi function, which can be exploited by a remote attacker to submit a special request that can be used in the application context to...
TOTOLINK A6000R 安全漏洞
The TOTOLINK A6000R is a high-performance wireless router that utilizes advanced technology and design to provide users with an outstanding networking experience. TOTOLINK A6000R suffers from a command injection vulnerability, which originates from the devname parameter of the resetwifi function,...
CVE-2024-57225
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the devname parameter in the resetwifi function...
CVE-2024-57225
CVE-2024-57225 affects Linksys E7350 router firmware
PT-2025-3412 · Totolink · Totolink X6000R
Name of the Vulnerable Software and Affected Versions: TOTOLINK A6000R version V1.0.1-B20201211.2000 Description: A command injection issue was discovered, affecting the reset wifi function through the devname parameter. This allows for potential exploitation. No information is provided about the...
CVE-2024-6403
A vulnerability, which was classified as critical, has been found in Tenda A301 15.13.08.12. Affected by this issue is the function formWifiBasicSet of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack may be launched...
CVE-2024-6402
A vulnerability classified as critical was found in Tenda A301 15.13.08.12. Affected by this vulnerability is the function fromSetWirelessRepeat of the file /goform/SetOnlineDevName. The manipulation of the argument devName leads to stack-based buffer overflow. The attack can be launched remotely...